$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/7136382578BA0ACBDD5EEAC687FF3234D04614B1.cer File: 7136382578BA0ACBDD5EEAC687FF3234D04614B1.cer (raw, json) Hash identifier: 45axFu3WcxTvp3Bh+HKyuQJzf2lMP66S6fBIHcfkWFY= Subject key identifier: 71:36:38:25:78:BA:0A:CB:DD:5E:EA:C6:87:FF:32:34:D0:46:14:B1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1BCF3162045F649DFFE2A93B714099129A2AB59E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/17f73780-0925-4b4a-bca7-a1e7ed3ff42a/0/7136382578BA0ACBDD5EEAC687FF3234D04614B1.mft caRepository: rsync://repo-rpki.idnic.net/repo/17f73780-0925-4b4a-bca7-a1e7ed3ff42a/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 26 Apr 2024 20:09:32 +0000 Certificate not after: Fri 25 Apr 2025 20:14:32 +0000 Subordinate resources: IP: 103.169.206.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:cf:31:62:04:5f:64:9d:ff:e2:a9:3b:71:40:99:12:9a:2a:b5:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 26 20:09:32 2024 GMT Not After : Apr 25 20:14:32 2025 GMT Subject: CN=7136382578BA0ACBDD5EEAC687FF3234D04614B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ab:3a:d4:44:f0:37:9a:56:4e:58:5f:54:c3: 72:33:c4:0a:93:2d:da:8e:f1:0b:6b:f5:b2:ef:ef: dd:9f:bb:ca:d7:40:d1:33:f2:13:32:c8:67:1f:c0: 76:1e:48:d1:fe:8a:ff:02:bf:4d:57:c2:0e:ba:f7: 54:c2:95:9e:58:3e:72:97:80:df:0b:0b:88:9f:1e: e0:61:0b:6b:4f:ff:8f:1b:e6:c1:d8:20:1a:35:aa: a1:91:f1:b3:70:59:7c:d4:e7:ab:68:c0:d4:7c:a9: 35:f0:a7:1e:d8:ec:78:6f:56:00:8a:70:d8:f3:fd: e5:d1:0c:23:05:02:4c:4d:20:02:e0:18:f4:66:d3: d1:26:71:b7:bc:58:34:52:0e:b6:6e:87:15:0b:94: de:5c:8e:f5:ff:35:63:77:66:d4:d4:47:ae:82:58: 6b:f5:47:65:fd:8d:fa:eb:08:90:cb:85:1c:42:c6: 11:c1:81:96:90:ef:a2:c1:73:25:7d:ee:23:e9:03: b1:df:23:a9:e9:03:21:1a:6d:82:97:fb:fc:da:a6: 65:4c:72:d4:94:4d:50:0b:91:54:7f:22:d6:21:de: c9:f9:f8:a6:0d:ae:e6:27:21:c0:34:bc:e3:91:dc: b0:29:9a:c7:91:34:a2:94:0a:7a:84:9f:b4:99:d6: 09:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 71:36:38:25:78:BA:0A:CB:DD:5E:EA:C6:87:FF:32:34:D0:46:14:B1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/17f73780-0925-4b4a-bca7-a1e7ed3ff42a/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/17f73780-0925-4b4a-bca7-a1e7ed3ff42a/0/7136382578BA0ACBDD5EEAC687FF3234D04614B1.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.206.0/23 Signature Algorithm: sha256WithRSAEncryption 76:bd:b0:72:7e:2a:f9:53:7d:5d:62:5b:8e:7f:57:ee:34:60: 5d:30:a2:95:67:8a:80:a1:53:92:90:4e:32:84:ef:de:e7:f3: ab:12:d8:80:da:be:e5:fc:db:a8:47:96:41:64:7c:8f:64:99: cb:f1:fe:1e:4a:3a:1a:72:ed:d8:bc:4b:73:c7:bc:ed:c0:42: 3c:81:4d:62:7e:ff:92:9c:8d:7d:b0:a4:e9:e7:bd:76:65:00: 8d:f0:16:3c:02:10:1a:23:b1:53:05:9c:31:c2:d7:fd:ad:87: 53:f8:e1:41:89:f3:1d:df:eb:bd:ef:69:ca:0b:10:26:3d:d1: dc:9b:7e:dc:50:a8:07:9a:b5:22:76:ac:ef:bf:df:3f:80:ef: 37:ff:e3:75:43:f1:d9:08:a7:5f:cf:8b:d6:56:71:b8:8f:68: e7:bd:dc:d1:27:3d:34:47:34:2b:32:4b:e0:77:8e:f5:24:67: a5:41:b3:6c:d5:d8:75:49:c3:d3:15:76:e6:5c:95:3a:56:39: ba:6f:fd:7e:ed:ad:92:ef:aa:10:1a:56:3f:36:f4:59:03:d0: bd:61:dc:5f:15:28:3b:c3:04:f9:85:a5:e7:95:6f:38:3c:b6: 9b:e0:ed:68:7d:c5:31:7a:9f:aa:02:32:0a:0a:57:cb:07:0b: 14:4f:3a:96 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUG88xYgRfZJ3/4qk7cUCZEpoqtZ4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQyNjIwMDkzMloX DTI1MDQyNTIwMTQzMlowMzExMC8GA1UEAxMoNzEzNjM4MjU3OEJBMEFDQkRENUVF QUM2ODdGRjMyMzREMDQ2MTRCMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMyrOtRE8DeaVk5YX1TDcjPECpMt2o7xC2v1su/v3Z+7ytdA0TPyEzLIZx/A dh5I0f6K/wK/TVfCDrr3VMKVnlg+cpeA3wsLiJ8e4GELa0//jxvmwdggGjWqoZHx s3BZfNTnq2jA1HypNfCnHtjseG9WAIpw2PP95dEMIwUCTE0gAuAY9GbT0SZxt7xY NFIOtm6HFQuU3lyO9f81Y3dm1NRHroJYa/VHZf2N+usIkMuFHELGEcGBlpDvosFz JX3uI+kDsd8jqekDIRptgpf7/NqmZUxy1JRNUAuRVH8i1iHeyfn4pg2u5ichwDS8 45HcsCmax5E0opQKeoSftJnWCfkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHE2OCV4ugrL3V7qxof/MjTQRhSxMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xN2Y3Mzc4MC0wOTI1LTRiNGEtYmNhNy1hMWU3ZWQzZmY0MmEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZjczNzgw LTA5MjUtNGI0YS1iY2E3LWExZTdlZDNmZjQyYS8wLzcxMzYzODI1NzhCQTBBQ0JE RDVFRUFDNjg3RkYzMjM0RDA0NjE0QjEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnqc4wDQYJKoZIhvcNAQELBQADggEBAHa9sHJ+KvlTfV1iW45/V+40YF0wopVn ioChU5KQTjKE797n86sS2IDavuX826hHlkFkfI9kmcvx/h5KOhpy7di8S3PHvO3A QjyBTWJ+/5KcjX2wpOnnvXZlAI3wFjwCEBojsVMFnDHC1/2th1P44UGJ8x3f673v acoLECY90dybftxQqAeatSJ2rO+/3z+A7zf/43VD8dkIp1/Pi9ZWcbiPaOe93NEn PTRHNCsyS+B3jvUkZ6VBs2zV2HVJw9MVduZclTpWObpv/X7trZLvqhAaVj829FkD 0L1h3F8VKDvDBPmFpeeVbzg8tpvg7Wh9xTF6n6oCMgoKV8sHCxRPOpY= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:19 2024 by rpki-client on console-fra.rpki-client.org